Lucene search
K

8 matches found

EUVD
EUVD
added 2025/11/10 3:31 p.m.4 views

EUVD-2025-44049

In JetBrains YouTrack before 2025.3.104432 missing VCS URL validation allowed delegation to unauthorized repositories from the Junie widget...

7.4CVSS6.3AI score0.0001EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/10 12:0 a.m.3 views

编号撤回

JetBrains YouTrack is a browser-based bug tracking and project management software from the Czech company JetBrains. The software features bug tracking, creating workflows and monitoring project progress. A security vulnerability exists in versions prior to JetBrains YouTrack 2025.3.104432, which...

6.3AI score0.0001EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/10 12:0 a.m.12 views

PT-2025-46157

Name of the Vulnerable Software and Affected Versions JetBrains YouTrack versions prior to 2025.3.104432 Description A missing VCS URL validation in JetBrains YouTrack allows delegation to unauthorized repositories through the Junie widget. This issue affects versions prior to 2025.3.104432...

7.4CVSS6.6AI score0.0001EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2025-1042

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An insecure direct object reference vulnerability in GitLab EE affecting all versions from 15.7 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2...

7.5CVSS5.5AI score0.00406EPSS
Exploits0References2
CVE
CVE
added 2025/07/30 7:59 p.m.31 views

CVE-2025-54583

GitProxy (finos/git-proxy) vulnerability CVE-2025-54583 affects version 1.19.1 and earlier; 1.19.2 fixes the issue. The flaw allows pushing to a remote repository while bypassing policy checks and explicit approvals when multiple branches are pushed, enabling code that should be blocked (e.g., se...

8.3CVSS6.7AI score0.00436EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/02/17 7:10 p.m.11 views

BIT-GITLAB-2025-1042 Files or Directories Accessible to External Parties in GitLab

An insecure direct object reference vulnerability in GitLab EE affecting all versions from 15.7 prior to 17.6.5, 17.7 prior to 17.7.4, and 17.8 prior to 17.8.2 allows an attacker to view repositories in an unauthorized way...

7.5CVSS4.8AI score0.00406EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.7 views

GitLab Enterprise Edition 安全漏洞

GitLab Enterprise Edition EE is a content management system from GitLab, Inc. in the United States. A security vulnerability exists in GitLab Enterprise Edition that stems from an insecure direct object reference that results in unauthorized repository access...

7.5CVSS6.2AI score0.00406EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/07/16 9:26 p.m.32 views

CVE-2024-5566 Improper Privilege Management allows for access to unauthorized repository content during migration

An improper privilege management vulnerability allowed users to migrate private repositories without having appropriate scopes defined on the related Personal Access Token. This vulnerability affected all versions of GitHub Enterprise Server prior to 3.14 and was fixed in version 3.13.1, 3.12.6,...

5.8CVSS0.00476EPSS
Exploits0References5
Rows per page
Query Builder